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(54) Virtual smart card 

(57) Snnart card technology is in the process of 
enierging as a fundamental advance in computer secu- 
rity. A Virtual Smart Card emulates a real smart card by 
providing an identical interface and services. However, 
a Virtual Smart Card has no physical manifestation any 
smart card-aware application can seamlessly inter- 
operate with either a real smart card or a Virtual Smart 
Card. A Virtual Smart Card Sever or a duplication-pro- 
tected physical media communicates with the Virtual 
Smart Card in order to activate or to deactivate the Vir- 
tual Smart Card. 
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Description 

[0001 ] The invention deals with Smart Card technol- 
ogy. Thte technology is in the process of emerging as a 
fundamental advance in computer security. As smart 
cards become commonplace, computer users will enjoy 
the full t)enefrts of cryptographic services without wony- 
ing about keeping the confidentiality of their crypto- 
graphic Iceys. 

Background to the Invention 

Duplication Protected Media 

[0002] A media is said to be duplication-protected if it 
is exceedingly difficult for an unauthorized person to 
build an exact duplicate. Exairples of duptication-pro- 
tected media are smart cards, Dongles, and rK>n-repro- 
ducable 00*8. Optical Media Authenticity Verification: 
DiscG^iard™, [httpy/www.ttr.cail/disogard.htm]. 
[0003] A Dongle in the past was a piece of hardware 
which can be connected to a Personal Computer PC. 
Those Dongles can be sut)s&tuted by means described 
in the Patent application EP97710011.4.A Dongle has 
an encryption k^ called the DongleKey. It » exceed- 
ingly difficult to attack a Dongle and extract the Dongle- 
Key. For this reason, it is exceedingly difficult to build an 
exact copy of a Dongle. 

[0004] One can copy protect software with a Dongle 
using the technique illustrated in Figure 14. 

1201: The software vendor generates a list of ran- 
dom numbers. 

1 202: The software vendor attaches a Dongle to his 
or her machine and asks the Dongle to encrypt 
each random number using tfie DongleKiey. The 
software vendor creates a table, ag, 1203, of tiie 
encryption results. For example, when the Dongle 
encrypts the value 23928, the result is 90873. 
When the Dongle encrypts the value 98709 the 
result is 98199. 

1204: The software vendor encodes the tat>le into 
the software to be protected. The software includes 
code that conununicates with the Dongla This code 
instructs the protected software how to execute 
steps 1208 through 1211. 

1205: The software vendor sends the protected 
software to an end-user. 

1206: The end-user receives the protected soft- 
ware. Upon each execution, the software randomly 
chooses a value from the table, e.g., the third value 
is 89766. 

1207: The protected software sends the random 



value to the Dongle and requests encryption using 
the DongleKey. 

1208: The Dongle returns the encrypted value. e.g., 
5 09876. 

1209: The protected software compares the result 
received from tfie Dongle with the expected value in 
tiie tabia If tfie conrparison fails, then the end-user 

10 does not prove tfiat he or she has the required Don- 
gle, and the program stops 1210. Othenwise, the 
program continues witti its normal execution 1211 
and periodically repeats starting with step 1206. It 
na exceedingly cfifficult to perform the encryption 

75 step wittKHJt the aid of the Dongle, t>ecause one 
cannot perform the encryption witiiout first obtain- 
ing the DongleKey. 

Readeriess Device 

20 

[0OO5] A readeriess devk^e is a partk;ular kind of dupli- 
cation-protected media that has no electronic connec- 
tion with a computer. For example, the SecurelD™ 
devk:e is a mok>ile devk^e with an i^D cfisplay. Periodi- 

2s cally (each minute or two) the nrK)bile device performs a 
cryptographic operation and displays a new challenge 
key. It is exceedingly difficult to 'predict tiie next chal- 
lenge key t>efore the next display. As a result, it is 
exceedingly difficult to duplk:ate the dance. 

30 [0006] A similar function is irrplemented on a central 
server which generates the same sequme of chal- 
lenge keys while precisely syrK:fvonizing with the 
wM\e device. The owner of the mobile device reads 
the LED display and sends the cunrent challenge key to 

35 the central server. If the central server vafidatesttiat the 
challenge key matches tiie one generated by the server 
during the cunent time period, then the central server 
autfienticates tfie owner of the device. 

40 Smart Card 

[0007] From an end-user's perspective, a smart card 
has three states: in-use, idle, arKi destroyed. A smart 
card is in-use whenever the end-user inserts the sn^rt 

45 card into his a her machine. An in-use smart card can 
execute cryptographic algorithms or other smart card 
servKes. An important property of a sniart card is that it 
stores cryptographic keys securely - rendering it 
impossit)le for an unauthaized party to construct an 

50 exact duplicate. Thus, a smart card is a duplication-pro- 
tected media. An kfle smart card perfbnms no servrces. 
A common place to store an idle smart card is in an 
owner's pocket A destroyed smart card is one tfiat the 
owner misplaces or destroys, e.g., the owner accklen- 

55 tally drops the smart card between the cushk)ns of a 
couch. After searching for the destroyed smart card the 
owner can either find the card or report the card as 
missing. The smart card issuing authority can erttier 
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replace the destroyed smart card with an identical copy, 
or invalidate the lost smart card and issue a complete 
replacement. 

[0008] One promising application of Smart Card tech- 
nology is license and copy protection (LCP) as 
desabed in EP97710011.4. When the owner inserts 
his or her smart card, copy protected programs execute; 
and when the owner removes the smart card, the copy 
protected programs stop. So. the smart card acts as a 
"(figital ignition key" that serves an analogous purpose 
to the ignition key in an automobile. A second promising 
application of Smart Card technology is Internet 
authentication. The owner authenticates him or herself 
to a remote machine by proving that he or she has the 
required smart card. 

[0009] A problem with smart card technology is its 
inherent expense and logistic overhead. One cannot 
use a smart card until one physk^ally attaches a compu- 
ter to a smart card reader. 

[001 0] This problem is been solved by the features of 
claim 1 anddaim 10. 

[0011] The inventkm presents a bridge technok)gy 
called Virtual Smart Card whk;h emulates a real smart 
card by providing an identk;al interface and collection of 
sendees. However, a Virtual Smart Card has no physi- 
cal manifestation. Any smart card-aware application 
can seamlessly interK)perate with either a real smart 
card or a Virtual Smart Card. 
[0012] Although a Virtual Smart Card has no physical 
manifestation, a Virtual Smart Card emulates all three 
of the real smart card's states. An cwner can insert a 
Virtual Smart Card with the effect that the Virtual Smart 
Card's state changes from idle to in-use. An owner can 
remove a Virtual Smart Card to change the state back 
from in-use to idle. After removing the Virtual Smart 
Card from one machine, the owner can potentially insert 
the Virtual Smart Card into a different machina The 
owner cannot insert the Virtual Snr^rt Card in the sec- 
ond machine until the owner removes the Virtual Smart 
Card from the first nrwacfiine. If tfie owner's macliine 
crashes, the owner may potentially tose his or her Vir- 
tual Smart Card. In this case, the cwner usually can 
recover the lost Virtual Smart Card. However, in some 
rare cases, tiie Virtual Smart Card disappears and the 
owner must report the toss to the Virtual Smart Card 
issuing authority. The issuing autfKMity responds in 
accordance to its policy, i.e., replacing the tost Virtual 
Smart Card with either an exact dupltoate or a corrplete 
replacement. 

[0013] The issuing authority operates a central trusted 
server called a Virtual Smart Card Server Q/SC Server). 
The VSC Server maintains a datak)ase of all Virtual 
Snnart Cards including the respective states and crypto- 
graphic keys. A Virtual Smart Card owner performs an 
insert operation t>y sending a request to tfte VSC Server 
for his or her Virtual Smart Card. The VSC Server medi- 
ates the request by first authenticating the owner and 
the Virtual Smart Card's implementation; and then vali- 



dating that the requested Virtual Smart Card is currentiy 
in the idle state. If the authentication and mediation suc- 
ceeds, then the VSC Server updates the datal>ase to 
indicate that the Virtual Smart Card is in-use. The VSC 

5 Server then permits the owner to use the Virtual Smart 
Card. When the Virtual Smart Card owner performs a 
remove operation, the Virtual Smart Card disat)les itself, 
securely sends a remove request to the VSC Server, 
and then shuts itself down. When the VSC Server 

10 receives a remove request, the VSC Server resets the 
Virtual Srmrt Card's state in tiie database to Kile. 
[0014] An alternative to the communication between 
tiie Virtual Smart Card and the Virtual Smart Card 
Server is presented in daim 10. The Virtual Smart Card 

15 Reader communicates with a Dongle (or some other 
duplication-protected physical media). A duplication 
protected physical media has the property that it is 
exceedingly difficult for an unauthorized attacker to con- 
struct a copy of the media. The Virtual Smart Card is a 

20 copy protected program that executes only if permitted, 
t}y the Dongle. If the end-user attaches the DonglelT 
tiie machine, then the Virtual Smart Card executes; oth^ 
envise, the Virtual Smart Card stops. 
[0015] A special extension to the claimed Virtual 

25 Smart Card is to augment the user autiientication 
mechan^ witii a reader-less authentication device. 
[P016] The advantage of this extension is excellent 
authentication at a low cost. The t>en^it is that the Vir- 
tual Smart Card architecture effectively extends the 

30 functionality of the reader-less device to include encryp- 
tion. 

[001 7] As claimed one prorrtising application of Virtual 
Smart Card technology is license and copy protection 
(LCP) . When the owner irtserts his or her Virtual Smart 

35 Card, copy protected programs execute; and when the 
owner removes the Virtual Smart Card, the copy pro- 
tected programs stop. So. tiie Virtual Smart Card acts 
as a "digital ignition key" tfiat serves an analogous pur- 
pose to the ignition key in an automobile. A second 

40 promising application of Virtual Smart Card technology 
is Intemet authentication. A common architecture 
exptofted by many of today's enterprises is a corporate 
Intranet connected to the Intemet via a firewall. In this 
architecture, an Intranet-tocated VSC Server distributes 

45 Virtual Smart Cards to machines phystoally located 
behind the corporate firewall. Once an owner inserts his 
or her Virtual Snrtart Card, the owner can exptort the Vir- 
tual Smart Card's cryptographic services to securely 
connect to Intemet servers, Extranets, or generate dig- 

50 ital signatures. 

[0018] For a more complete understanding of the 
present invention and for further advantages thereof, 
reference is now made to the following Description of 
the Preferred Embodiments taken in conjunction witti 

55 the accompanying Drawings In which: 

FIG. 1 is a block diagram of the present system 
architecture of the virtual smart card sys- 
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tern; 

FIG. 2 is a schematic representation of a master 
key executing protocol; 

5 

FIG. 3 is a schematic representation of an enter- 
prise that operates a VSC Server behind its 
firewall; 

FIG. 4 Is a schematic representation of the states io 
which a Virtual Smart Card can get; 

FIG. 5 is a schematic representation of the present 
system architecture of the virtual smart card 
system with a great deal of Virtual Smart is 
Cards; 

FIG. 6 is a block diagram of the insert operation of 
a Virtual Smart Card; 

20 

FIG. 7 is a schematic representation of a channel 
establishment between a Virtual Smart 
Card Server and a Virtual Smart Card; 

FIG. 8 is a block diagram of the authentication 2s 
process of a Virtual Smart Card; 

FIG. 9 is a detail of block diagram FIG. 8 showing 
the authenticationi process for^ user 
auttientication; 30 

FIG. 10 is a schematic representation of a detail of 
block diagram FIG. 8 showing the irrple- 
mentation authentication; 

35 

FIG. 11 is a bkx^k diagram of the remove operation; 

FIG. 1 2 is a b*ock diagram of the recover operation; 

FIG. 13 is a k>lock diagram of the entire oommunk»- 40 
tion process between the Virtual Smart 
Card Server and the Virtual Smart Card; 

FIG. 14 is a block diagram of the method using 

Duplication Protected Media; 45 



FIG. 15 is a bkx:k diagram of the present system 
architecture of the virtual smart card system 
using no network connection. 

50 

Irrplenientation/AFchitecture 
Human Interface 

[0019] When a Virtual Smart Card owner executes the 55 
insert operation, a program prompts the owner for a 
password. When the owner executes the remove opera- 
tion, the Virtual Smart Card program stops execut- 



ing.Once the owner removes the Virtual Smart Card, 
the owner may travel to a different machine arxi insert 
the Virtual Smart Card there. 
[P020] tf the owner loses the Virtual Smart Card, ttie 
owner executes a recover program. The recover pro- 
gram prompts the owner for a password. The recover 
program then provides a success or error code to the 
owner depending upon the state of the recovery. 
[0021] Both the insert and recover programs derive 
two symmetric keys from the owner's password. The 
programs coirpute a hash algorithm. &g. MD5. Men- 
ezes, A.. Oorschot, P., and Vanstone, S., Hancftxx>k of 
Applied Cryptography. CRC Press. Boca Raton 1996. 
over the password and a well-known, hardcoded SALT- 
value. The first half of the hash result is an authentica- 
tion k^ arxJ the second half of the hash result is a pro- 
tection key. 

[0022] The purpose of the authentication key is to 
securely identify the owner to a VSC Server. The pur- 
pose of the protection key is to encrypt protected infor- 
mation that the Virtual Smart Card upk>ads to the VSC 
Server; and decrypt protected infomnation that the Vir- 
tual Smart Card downloads from the VSC Server. The 
protection k^ ensures that no operator of the VSC 
Server can discover or modify a Virtual Smart Card's 
protected trrfbrmation. 

System Architecture 

[0023] Rgure 1 illustrates the Virtual Smart Card 
architectura Smart card aware user application 1 com- 
municates with the "smart card" via the DLLs of a smart 
card service provider 2. The smart card service provider 
2 relies upon the sendees of the Smart Card Resource 
Manager 3 which communicate with a Smart Card 
Reader Helper Driver 4 and a Virtual Smart Card 
Reader Driver 9. 

[0024] As opposed to a physk^al smart card reader, a 
Virtual Smart Card Reader 5 is virtual hardware acting 
as a errulator that passes information to and from a Vir- 
tual Smart Card 6. Additionally, the Virtual Smart Card 
Reader 5 communicates with a Virtual Smart Card 
Server 8 (VSC Server) via a network 7. ag.. an Intranet, 
Extranet or the Internet. 

Protected Information 

[0025] A Virtual Smart Card 6 stores protected infor- 
mation that it guards in terms of confidentiality and 
integrity. The most important example of protected infor- 
mation is a private key used for dgital signatures, 
decryption, key management, and possibly other pur- 
poses. Other examples of protected information include 
counters used in software rental applications, and confi- 
dential information used t>y heatthcare providers. 
[0026] The VSC Server 8 stores all protected informa- 
tion in its datat>ase (encrypted using the respective pro- 
tection keys). When a Virtoal Smart Card owner inserts 
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a Virtual Smart Card 6, the VSC Server 8 downloads 
the protected lirfbrmalion; and when the owner removes 
a Virtual Smart Card 6, the Virtual Smart Card 6 
uploads the updated protected Information to the VSC 
Servers. s 

Encrypted MenrxMy 

[0027] Immediately after performing the insert opera- 
tion, the Virtual Smart Card 6 generates a new, tempo- io 
rary symmetric key Next the Virtual Smart Card 6 
decrypts the protected infornr)ation using the protection 
key and re-encrypts the information using the temporary 
key When perlornrung the remove operation, tf an 
update is required, the Virtual Smart Card decrypts the is 
protected information using the temporary key and then 
re-encrypts the information using the protection key. 
The Virtual Smart Card 6 upfoads the re-encrypted 
information to the VSC Server 8. 

[0028] During the relatively short periods in which the 20 
Virtual Smart Card 6 needs the protected information, 
the Virtual Smart Card 6 decrypts the information using 
the temporary key. Next, the Virtual Smart Card 6 per- 
forms processing as required, tf the processing modifies 
the protected information, then the Virtual Smart Card 25 
re-encrypts the information using the temporary key 
Rnally, the Virtual Smart Card 6 zeros out the plain text 
imaga The Virtual Smart Card 6 repeats this procedure 
each time that it uses the protected information. 

30 

Volatile Memory 

[0029] The Virtual Smart Card 6 stores its encrypted 
protected information in volatile menriory (not shown) of 
the data processing unit or machine, ag. a personal 35 
corrputer, where it runs. Before the Virtual Smart Card 
6 exits, it explicrtty zeros out all of Hs volatile menrxHy 
used to store the protected information. 



number of sectors on each fixed disK and size of swap 
space. 

[0032] The Virtual Smart Card 6 perfomns a similar 
procedure using its Process ID. If the Virtual Smart Card 
6 notices during polling that the queried Process ID 
does not match the stored Process ID. then the Virtual 
Smart Card 6 inrvnediately exrts. 
[0033] The Virtual Smart Card periodically polls its 
host machine for the time of day The Virtual Smart Card 
6 compares its expectation with the result of the polling. 
If the result does not reasonably match expectations, 
then the Virtual Smart Card 6 shuts itself down by exe- 
cuting the renwve operation. For example, if the Virtual 
Smart Card 6 polls the machine approximately 
hour, then the Virtual Smart Card 6 would detect an 
^ en^a if the elapsed time between polling exceeds ninety 
minutes. 

Virtual Smart Card (VSC) Server 

[0034] The VSC Server 8 is a trusted applfoation 
which maintair^ a database It fias to supervise one or 
more Virtual Smart Cards 6. In order to make the super- 
vision possOsle each Virtual Smart Card 6 has the fol- 
kiwing records: 

Serial Number: The serial nurTi>er is a unique iden- 
tifier of a Virtual Smart Card 6. 

State: The state variat>le stores exactly one of the 
following values: in-use. klle, an6 destroyed. If state 
has tfie value in-use, then the VSC Server 8 recog- 
nizes tfiat a Virtual Smart Card 6 has been inserted 
but not yet removed. The idle state indicates that 
the Virtual Smart Card 6 has been removed. The 
destroyed state indicates tiiat the Virtual Smart 
Card 6 is no longer valid. The state of a destroyed 
Virtual Smart Card 6 never changeSw 



Wired Memory 40 

[0030] A Virtual Smart Card 6 wires the memory that 
stores protected information. The wire operation pre- 
cludes the memory from being paged out to swap 
space. e.g. at a hard disk of a personal computer. 45 

Polling 

[0031] A Virtual Smart Card 6 periodically polls its 
machine to ensure ttiat an attacker has not copied the so 
Virtual Smart Card 6 to adifferent machine The Virtual 
Smart Card 6 stores a Machine Unique Key (MUK) in 
volatile m&nofy. Periodically, the Virtual Smart Card 6 
obtains a new MUK from the machine If the new MUK 
does not match the old MUK, tiien the Virtual Smart ss 
Card 6 detects an attempted attack and exits. The MUK 
is a hash off information that uniquely identifies the 
machine, ag.. network address, machine name. 



MUK: The MUK is a machine unique key. tf the 
state is ehher idle or destroyed, tfien the MUK gets 
the NULL value. If the state is in-use, then MUK 
value gets the MUK of the currently executing 
machine. 

Protected Information: The protected information 
contains information tfiat tiie Virtual Smart Card 6 
protects against attack. Examples of protected 
information are confidential encryption keys, or the 
state of electronfo counters. The owner's protection 
key encrypts the protected information, rvformally, 
ttie VSC Server 8 operators do not have access to 
an owner's protection k^. 

Protected Channel Info: tf the state of a the Virtual 
Smart Card 6 is kile or destroyed, then the pro- 
tected channel info gets the NULL value. If the state 
is in-use. then the Protected Channel Info gets the 
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encryption key and tilher state infonmation of a pro- 
tected channel through which the Virtual Smart 
Card 6 and the VSC Server 8 communicate. 

- Authorization Info: The authorization information 
stores all information required to autiiorize a Virtual 
Smart Card 6. e.g., the hash of ttie authorization 
key. An example hash algorithm is the so called 
MD5. 

List of Operations 

Insert 

[0035] The insert operation enak)les a Virtual Smart 
Card 6 on exactly one computer. The VSC Server 8 sete 
the state of the Virtual Smart Card 6 to in-use and 
refuses all sut>sequent Insert requests for tiie same Vir- 
tual Smart Card 6 until the VSC Server 8 receives a cor- 
responding remove request The folkMring five steps: 
Channel E8tak)lishment, Authentication. Machine 
Unique Code, Machine Lock, and Download present the 
details: 

Channel Estak)lishment 

[0036] Channel esftatslishment txjikte a protected com- 
munication link between the Virtual Smart Card 6 and 
the VSC Server 8. The channel establishment protocol 
is a transport layer security protocol. e.g.. Secure 
Socket Layer SSL [SSL version 3.0]. In this protocol, the 
VSC Server 8 has a well-known pvtXic key and a core- 
spending confidential private key. The Virtual Smart 
Card 6 generates a new symmetric key called a sessfon 
key and encrypts the session key using the VSC 
Server's public k^. The VSC Server 8 cfisoovers the 
session key by applying its private key. The protected 
channel consists of infonriation communk;ated between 
the two parties that is ^icrypted using the session key. 
^k3te that a good implementation of a protected conrvnu- 
nk:ation channel, ag., SSU provides protection against 
cryptoanalysis. e.g.. playt>ack. 
[0037] The VSC Server 8 and the Virtual Smart Card 
6 use this protected channel for all subsequent conmuj- 
nicatioa In other words, the VSC Server 8 and the Vir- 
tual Smart Card 6 encrypt all future communications 
using the session key. The subsequent communication 
includes the insert operation and the remove operation. 
The sessfon key disappears when the Virtual Smart 
Card program exits. 

Authentication 

[0038] The Virtual Smart Card 6 authenticates its 
owner and its own implementation to the VSC Server 8. 
The purpose of the owner authentication to ensure 
that an attacker cannot steal someone else's Virtual 
Smart Card 6. The purpose of irrplementation authenti- 



cation is to ensure that an attacker cannot buiki a leaky 
Virtual Smart Card 6 emulator. Such a leaky entulator 
wouM be used an attacker to authenticate as a real 
Virtual Smart Card 6 and sid>sequentty leak tiie pro- 
5 tected information. 

User Authentication 

[0039] Using a hash function, ag.. MD5. denoted by 
10 h. tiie Virtual Smart Card 6 corrputes h(authent!catlon 
key). The Virtual Smart Card 6 tpfoads tiie hash result 
to tiie VSC Server 8. The VSC Server 8 authenticates 
tiie Virtual Smart Card 6 only if tiie VSC Server 8 can 
validate the hash. 
IS [0040] Since the protected channel encrypts all infor- 
mation communicated between tiie Virtual Smart Card 
6 and the VSC Server 8. ttiere is no possibility that an 
attacker can steal the autiientication key or its hash. 
The protected channel additionally guards against cryp- 
20 toanalysis attacks, ag.. playback. 

Virtual Smart Card Authentication 

[P041] The Virtual Smart Card 6 authenticates its own 
25 Irrplementation using any or all of a variety of different 
techniques such as ErTt>edded Shared Key; Keyfile 
Authentication and/br One-Tlme Algorittim as descrfoed 
below. 

30 Ennbedded Shared Key 

[0042] A shared k^ called Master is embedded into 
all Virtual Smart Cards 6. Each Virtual Smart Card 6 
proves ttiat it has tiie Master toy by executing ttieproto- 

35 col illustrated in Rgure 2. First, tiie VSC Server 8 gener- 
ates a unkfue random number rml. and sends this 
random number rml to tiie Virtual Smart Card 6. Next, 
tiie Virtual Smart Card 6 generates a second random 
nunt>er rm2 and computes the hash. e.g.. MD5, of rml . 

40 rm2. and Master. The Virtual Smart Card 6 returns tiie 
random nurTt>ers rml. mi2, and the result of the hash to 
tiie VSC Server 8. The VSC Server 8 tiien re-computes 
tiie hash and compares for equality. The VSC Server 8 
passes ttiis autiientication step if and only if tiie oompar- 

45 ison succeeds and the Virtual Smart Card 6 returns the 
con-ect hash result wrttiin a short time period, ag.. 30 
seconds. 

[0043] The embedded shared key autiientication step 
securely autiienticates a Virtual Smart Card 6 only if the 

50 Virtual Smart Card's Master key remains confidential. 
However, if a hacker were to disassemble a Virtual 
Smart Card 6 and discover the Master, then the hacker 
coukJ break tiie security of all Virtual Snnart Cards. As a 
result the VSC Server 8 performs tiie second auttienti- 

55 cation Step described beksw. 
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Keyffle Authentication " 

[0044] The Virtual Smart Caid 6 obtains an license 
and copying protection (LCP)-conipliant keyfile which 
contains the Virtual Smart Card's p\Mc key arxi a con- s 
fidential authentication string asl, &g., a 128-bit ran- 
dom number. The keyfile is signed using the VSC 
Server's private k^ and is encrypted using a proprie- 
tary symmetric algorithm. Systems using a k^ile are 
known from the Patent applk^ation EP9771 001 1 .4. w 
[0045] A software vendor locates the customer's pub- 
lic keying material and embeds the customer's put)lic 
k^ng material irtto a keyfile and sends the keyfile to the 
customer by dectronic mail. Once the customer installs 
the keyfile. the protection mechanism permits the cus- is 
tomer to execute the protected software (provided that 
the customer can prove that he or she has access to the 
customer's private keying mat^ial via a pFobabilistic 
proof). The creation of the keyfile is perlbrmed by a key- 
file generator, whk^h is a program that executes at the 20 
vendor's facility. The vendor must take care to guard this 
program. 

[0046] The Virtual Smart Card 6 decrypts the keyf Be 
and validates the signature. Next, the Virtual Smart 
Card 6 decrypts and discovers the plaintext k^ as1. 2s 
Next the VSC Server 8 and the Virtual Smart Card 6 
repeat the protocol descrit>ed above in conjunction with 
Rgure 2 with one exception. The VSC Server 8 and the 
Virtual Smart Card 6 sut>stitute the confidential authen- 
ticatk>n string asl for the master k^. so 
[0047] The advantage of keyfile authentk;ation is that 
the attacker does not compromise all Virtual Smart 
Cards by txeaking the security of a single keyfile. 
[0048] Any implementation of a Virtual Smart Card 6 
should authentk;ate itself using txsth forms of authenti- 35 
cation descn'bed akxTve if a high grade of security assur- 
ance is wanted. Hcwever, in order to provide the t>est 
security assurance, one shouU addrtfonally implement 
the advanced form of authentk^ation listed t>elow. 

40 

Ohe-Tlme Algorithm 

[0049] The VSC Server 8 authenticates a Virtual 
Smart Card 6 with the aid of mobile agents and auto- 
mated code generation. A mobile agent is an executa- 45 
tHe code segment that passes t>etween different 
machines. e.g.. an Active X control. Automated code 
generation is vehicle by whk^h one can generate a new 
executable at run-time. The automated code generator 
produces Virtual Smart Cards 6 acoorcfing to a terrptate so 
which ensures that all Virtual Smart Cards 6 are identi- 
cal in all but two respects: 

Authenticatfon: Each Virtual Smart Card 6 fias a 
unk^ue authenticatfon function, f. This function ss 
accepts a randomly generated number as input and 
produces a nurrfoer as output This output is suita- 
ble for deriving a k^ used in a syiranetric encryp- 



tion algorithm, ag., DES. ^ 

Wrapper: The portion of the Virtual Smart Card 6 
executable that implements f is encrypted (with a 
hardcoded symmetric key). Immediately before 
executing f, the Virtual Smart Card 6 executable 
focates the hardcoded k^ and performs the 
required decryption. The Virtual Smart Card 6 
zeros out the plaintext implementation of / irrvnedi- 
ately after executfon. 

[0050] At runtime, the VSC Server 8 generates two 
random numbers, x and y. The VSC Server 8 conputes 
the folfowing result: 

w = E[x,f(y)Jr 

where E is a symmetric encryption function. &g.. DES, 
x lsa plaintext value, and f(y) is a value used to derive 
an encryptkxi key. In other words, the VSC Server 8 
computes w by erK^rypting x using the result of the com- 
putation f(y). The VSC Sender 8 passes Mr and y to the 
Virtual Smart Card 6 . Authentication succeeds only if 
the Virtual Smart Card 6 can discover x using the fol- 
lowing decryption step within a short time period, ag., 
30 seconds: 

That is. the Virtual Smart Card 6 decrypts w using a k^ 
derived from the result of the corrputation f(y). 
[P051] No two Virtual Smart Cards share the same 
function, f. Furthermore, no two installs of the same Vir- 
tual Smart Card 6 share the same function f. Each 
irrplementation of f should vary in terms of txyth opera- 
tions and parameters. Furthermore, each irrplementa- 
tion of fshoufo be rather imposing from the perspective 
of a reverse engineering attack. An exanrple specif foa- 
tion of f is provided below: 

f(y) = i7 

icos(yrdy 

23 



[0052] An irrposing function, f, woufo frustrate an 
attacker. The VSC Sender 8 can quickly generate the 
required irrplementation given the akl of a good mathe- 
matics tool whfoh automatically generates "C" imple- 
merrtations. f=6r exarrple, we specified the exarrple 
function, f, using "Mathcad", Horrpage 
ref:httpy/www.mathsoftcorTVmathcad/ - a comm^dally 
available tool. Using tiiis tool were able to generate ten 
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exanples of imposing functions in just a few minutes. 
Machine Uni<|ue Code 

[0053] After successful authentication, the Virtual s 
Smart Card 6 generates a Machine Unique Key (MUK) 
and uploads the MUK to the VSC Server 8. The VSC 
Server 8 uses the MUK in the recover operation 
described in a following section. 

10 

Machine Lock 

[0054] The Virtual Smart Card 6 exclusively locks a 
well-known resource on the local machina This lock 
ensures that only a single copy of the Virtual Smart is 
Card 6 executes on the machine and its operational sys- 
tem at any point in tima An example off a lock on Win- 
dows 95™ or Windows NT^ is an absolute path of a 
re^stry entry opened for exclusive access. The first Vir- 
tual Smart Card 6 to open the registry gets the lock and 20 
any 8uk>sequent Virtual Smart Card 6 process must wait 
until the first process releases the lock. In the event of a 
machine or process crash, the operating system auto- 
matically releases the bck. 

25 

Download 

VaasSl n the state of the Virtual Smart Card 6 as 
recorded In the VSC Sender's 8 datak>ase is idle, then 
the VSC Sen/er 8 resets the state to in-use; otherwise, so 
the VSC Server 8 returns failura Upon success, the 
VSC Server 8 downk>ads all of the Virtual Smart Card's 
protected information through the protected channel. 
This Information potentially includes confidential 
encryption keys, secured counts 35 
[0056] At this point the Virtual Smart Card 6 has been 
inserted and is ready for usa 

Remove 

40 

[0057] At any time after successfully performing an 
insert operation, a Virtual Smart Card 6 may perform 
tfie remove operation (using the protected channel 
established during the insert operation). Rrst, the Vir- 
tual Smart Card 6 dsables itself by refusing all requests 4S 
for servfoes. Next, the Virtual Smart Card 6 sends a 
renrvyve request to the VSC Server 8 whk^h uptoads the 
protected information (encrypted using the protection 
Upon receipt of a remove request, the VSC Server 
8 resets its corresponding database entry to idle and so 
returns a success acknowledgment. Next, the Virtual 
Smart Card 6 unlocks the local machine fock. zeros out 
the protected information, and shuts itself down. 

Recover 55 

[0058] The insert^renxTve protocol does not prohSxt an 
owner from losirtg his or her Virtual Smart Card 6. tf the 



insert operation succeeds but the corresponding 
renrxive operation fails, then the VSC Server 8 contin- 
ues to mark the Virtual Smart Card 6 as irwise despite 
the fact that the outstanding Virtual Sn^ Card 6 no 
longer executes. The Virtual Smart Caid 6 owner can 
request to return the state of the Virtual Smart Card 6 to 
idle by executing the recover operation. The constraint 
is ttiat one must execute the recover operation upon the 
machine that fost the Virtual Smart Card 6. 
[0O59] The recover operation begins using the same 
initialization as the insert operation including channel 
establishment, authentication, MUK, and machine fock. 
The VSC Server 8 checks that the provkJed MUK 
equals the MUK as stored by the last insert operation. K 
the check succeeds, then the VSC Server 8 resets the 
state in the data base of the Virtual Smart Card 6 to idle. 
[0060] The recover operation is secure because it 
ensures that no machine currentiy has an outstanding 
instance of the Virtual Smart Card 6. The MUK check 
ensures that the VSC Server 8 and tfie requesting 
machine agree upon the machine tfuit last executed the 
successful insert operation. The machine lock ensures 
that this machine is not executing any other copy of the 
Virtual Smart Card 6. Asa result ttie recover operation 
executes successfully only if no outstanding instance of 
tine in-use Virtual Smart Card 6 exists. 
[0061 ] In rare cases, the Virtual Smart Card 6 protocol 
can lead to a catastrophfo failure - a lost, unrecoverable 
Virtual Smart Card 6. This state occurs when a Virtual 
Smart Card 6 cannot execute a recover operation. For 
example, consider a Virtual Smart Card 6 that executes 
upon a machine tiiat exhbits a severe, catastrophfo faD- 
ure such as an unrecoverable disk error. In tfils case, it 
is possible tfiat the MUK check could potentially fail 
when it should succeed. 

[0062] In tiie case of a catastrophic failure, the VSC 
Server 8 must deal with the same situation as a real 
smart card owner who physfoalty toses his or her real 
smart card. Depending upon the VSC Server's 8 policy, 
the VSC Server 8 can choose how to issue the new Vir- 
tual Smart Card S.Applfoations of the Virtual Smart 
Card 

[0063] One may deploy Virtual Smart Card 6 technol- 
ogy in almost any system tiiat uses real smart cards. 
This section presents some exairples. 

Software Copy Protection 

[0064] The Software License and Copy protection 
system LCP prohit>its software from executing unless 
an erxi-user can produce a Ifoensed private key. A key- 
fOe issued t>y the software vendor (or another author- 
ized part^ encodes the licensa Security 
countermeasures ensure that an attacker cannot forge 
a k^ile which contains a public key. At runtime, a copy 
protected program asks for a proof tfiat the end-user 
has a Ifoensed private key. The copy protected program 
validates the proof using the puk)lic key stored in ihe 
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keyfila 

[0065] Some example applications of Software 
License and Copy protection system LCP using Virtual 
Smart Cards 6are listed belcw. 

- Try-Befbre-Buy: Before purch^ng an application, 
a potential customer obtains a Try-Before-Buy 
denxx The keyfDe for the demo permits limited 
i^ge in terms of either furK^tionalrty or permitted 
executat)le period. Hopefully, if the potential cus- 
tomer likes the dema then the customer sut>se- 
quentty purchases the software. The software 
vendor connects a VSC Server 8 to the Internet or 
another network that albws access to many com- 
puters. Anyone can connect to the Internet when- 
ever fie or she wishes: register with the software 
vendor, and obtain a unique Virtual Smart Card 6. 
The vendor downloads a corresponding k^ile to 
permit the end-user to execute the program. 

- Network PCs axi6 Network Contputers: In order to 
decrease the total cost of ownership of computers, 
enterprises are t>eginning to administer machines 
using a dient/iserver architecture. Each client regu- 
larly obtains programs and maintenance servues 
from the central server. The server bears the 
responsbility of ensuring tfiat each dient runs cor- 
rectly. One can add VSC Server 8 functfonality to 
the central server without any signiftcant increase in 
overhead because the architecture requires a net- 
work connection anyway. 

- Licensed Software Repository: An enterprise's cen- 
tral server stores a collectkm of copy protected pro- 
grams. Errpfoyees dcwnfoad the programs from the 
central server onto their machines. If the errpfoyee 
wishes to execute a program, then the empk^ee 
purchases a k^Oe. The enterprise distrSxites pri- 
vate keys to enpfoyees guarded bf Virtual Smart 
Cards 6. 

Network Authentication 

Intranet VSC Server 

[0066] The potential applications of Virtual Smart 
Cards 6 are not limited to software copy protectfon. Fig- 
ure 3 Dlustrates an enterprise that operates a VSC 
Server 8 in an intranet 1 1 t}ehind a firewall 1 0 whk;h pro- 
tects the intranet 1 1 from the internet 12. The purpose 
of the architecture is to deploy asymmetnc crypto^aphy 
througtxxit the enterprise without bearing the cost of 
smart cards. Some employees have a Personal Corrpu- 
ter PC. Each employee can use the services of his or 
her Virtual Snrtart Card 6 to authenticated to remote 
nodes, communicate via secured electronk: mail, elec- 
tronrcally sign documents, or copy protected pro- 
grams. 



[0067] The security of the architecture signffk:antly 
exceeds the security enployed by most enterprises 
today because of the reduced dependence upon pass- 
words. For most purposes, In lieu of authenticating 

5 using a password, an enterprise etrptoyee can authen- 
ticate using his or her Virtual Smart Card's 6 private key 
[0068] The weakest point In the architecture Is the 
errployee's authentication to the VSC Server 8. Ulti- 
mately, the enpkyyee must supply his or her p^swrord. 

70 Nevertheless, one can optionally configure a VSC 
Server 8 to require additk)nal authentk:ation material, 
ag., a property registered MUK, or coordination with an 
external authentication method such as the Secure ID 
system. 

15 

Intern^ Sennce Provkler VSC Server 8 

[0069] An Internet Service Provider (ISP) Is an kJeal 
candidate for operating a VSC Server 8. When one of 

20 the ISP's customers connects to the ISP. the customer 
automatically inserts a Virtual Smart Card 6; and at dis- 
connect time, the Virtual Smart Card 6 automatically 
removes itself. The customer may siA>sequently exe- 
cute copy protected programs, securely access network 

25 services, and participate in electronk; commerce. 

[0070] The ISP can provkie the VSC Server 8 using 
minimal extensfons to its existing customer datat>ase. 
With the exception of a little extra processing at cus- 
tomer togin time, the Virtual Smart Card 6 servfoe 

30 requires no ISP resources. 

Telephony over an Internet Protocol network(H.323) 

[0071] The ipcoming trend in enterprise telephony is 
35 to replace traditional telephone technology e.g.. PBXs 
witii a telephone to LAN gateway Enterprise empfoyees 
connect their telephones, picture phones, and comput- 
ers PC to their intranet 1 1 ; and a gateway connects the 
intranet to external networks such as tfie telephone net- 
40 work, tfie Internet 12. and AsynchrorK>us Transfer 
Modus (AT^ networks. 

[0072] A gateway and gatekeeper standard that pro- 
vides telephony over an Internet Protocol (IP) network is 
tiie K323. K323 d^ines a gateway tiiat translates IP 

45 traffk; to and from ttie telephone network; and K323 
defines a gatekeeper that mediates and helps route traf- 
fk; ttirough the gateway Unfortunately, by connecting 
ttie intrant to botti ttie telephone networic and ttie Inter- 
net, the enterprise unwittingly creates one of the most 

50 valuable resources potentially availat)le to a hacker. 
ConskJer, for example, a hacker who breaks through the 
enterprise's Internet firewall 10 and accesses the 
intranet 1 1 . This hacker may pot&itially place telephone 
calls from this intranet 1 1 ttieret^ biiUing a telephone 

55 gateway to the worid. 

[0073] Virtual Smart Card 6 technology can provide 
an important countermeasure to such an attack. By 
irrplementing support tor asymmetric auttientication in 
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the K323 gateway and gatekeeper, the system can 
effectively preclude Intern^ hackers from placing phone 
calls. The Idea is that the hacker cannot obtain a Virtual 
Smart Card 6 with the required private k^ arvJ as a 
result cannot authenticate to the gateway and gate- 
keeper. 

Description of EmtxxJiment of Invention 
States 

[0074] Rgifl-e 4 illustrates the states of the Virtual 
Smart Card (VSC) system. When a Virtual Smart Card 
6 is created, its state is idle 101. When a Virtual Smart 
Card owner executes an insert operation 104, the state 
changes to in-use 102. Alsa if the current state is idle 
101. the destroy operation 107 changes the state to 
destroyed 103. When currently in the in-use 102 state, 
the remove 105 operation and the recover 106 opera- 
tion change the state to idle 101 . Also, when currently in 
the in-use 102 state, the destroyed 107 operation 
changes the state to destroyed 103. 

Architecture 

[0075] Figure 5 DIustrates the architecture of the Vir- 
tual Smart Card system. One or more Virtual Smart 
Cards 6 attach to a computer network 7. No assump- 
tbns are made concerning the security of the corrputer 
network 7. A Virtual Smart Card server 8 also connects 
to tfie computer network 7. * 
[0076] The Virtual Smart Card operatkHis are 
descrit)ed beAcw, 

Insert (104 Rgure4): 

[0077] The insert operation 1 04 illustrated in Rgure 6 
changesthe state from Kile 101 to in-use 102. Rrst, the 
insert operation 104 executes a channel estal3lishment 
step 301. The cfiannel estak)lishment step 301 estab- 
lishes a protected channel between the VSC Server 8 
and the Virtual Smart Card 6. All subsequent communi- 
cation t>etween the VSC Server 8 and the Virtual Smart 
Card 6 is through this protected channel. The authenti- 
cation step 302 authenticates both the Virtual Smart 
Card 6 owner arxi the Virtual Smart Card 6 implementa- 
tion to the VSC Server 8. If thaauthentk:ation step fails, 
then the Virtual Smart Card 6 exits 306 (and does not 
change the state). If the authentication step succeeds, 
then the Virtual Smart Card 6 computes a Machine 
Unique Key (MUK) 303 and upk>ads the MUK to the 
VSC Server 8. Next, the Virtual Smart Card 6 gabs an 
exclusive machine lock 304. Next the Virtual Smart 
Card 6 requests mediation 305. If the mediatkMi 305 
fails, then the Virtual Smart Card 6 exits 306 (and does 
not change the state). Otherwise, the VSC Server 8 sets 
the state of the Virtual Smart Card 6 to in-use 102. 
Upon receipt of a positive acknowledgment from the 



VSC Server, the Virtual Smart Card 6 enables itself for 
future usa 

Channel Establishment (301 Rgure 6): 

5 

[0078] As shown in Rgure 7 the VSC Server 8 has an 
asymmetric private key 401 that the VSC Server 8 
keeps confidential. The VSC Server 8 publishes the cor- 
responding pMlc k^ 404 to everyona The VSC Server 

10 8 generates a rarxlom numt)er, r1 402, and sends r1 
402 to the Virtual Smart Card 6. The Virtual Smart Card 
6 generates a second random number r2. The Virtual 
Smart Card 6 generates two adcfitional random num- 
t>ers used as sesskni k^, si and s2. The Virtual 

15 Smart Card 6 encrypts r1 , r2, si . and s2 using the put>- 
lie key 404. The Virtual Smart Card 6 sends r2 and the*^ 
encrypted result to the VSC Server 8. Neither the VSC 
Server 8 orthe Virtual Smart Card 6 disclose si ors2to 
other parties. Until the Virtual Smart Card 6 exits, all 

20 subsequent oommunicatiorts are encrypted using a 
symmetric encryption algorithm, e.g.. DES, using the 
session key si. Furthennore, all communications are 
hashed (e.g., MD5) together with session key 82. The 
recipient validates by re-computing the hash. The pur- 

25 pose of the hash is to ensure that no attacker nKxllfied 
the communk^ation in-transit. 
[0079] Note that in lieu of the protocol described 
above, one can potentially substitute a SSL or some 
other appropriate transport layer security protocol. 

30 

Insert request (309 Rgure 6): 

[0080] The Virtual Smart Card 6 sends a message to 
the VSC Server 8 requesting an insert operation. 

35 

Authentication (302 Rgure 6) 

[0081] As shown in Rgure 8 the Virtual Smart Card 6 
sends its unk^ue serial number 508 to the VSC Server 

40 8. The VSC Server rejects arry other operations (insert, 
renrave, recover, destroy) with this same serial nuiTt>er 
until this entire Insert operation 1 04 exits. Upon exit, this 
Insert operation either does not change the state or 
changes tiie state to in-usa 

45 [0082] Authentication 302 requires the Virtual Smart 
Card 6 owner to authenticate him or herself using at 
least one method 501 . 

[QOSS] However, the system may additionally inple- 
ment two or more indepervJent methods (represented 

50 by 502). The Virtual Smart Card 6 authenticates its own 
implementation (distinct from the owner's authentica- 
tion) 503. The Virtual Smart Card 6 may optionally 
authenticate its implementation using additional inde- 
pendent methods 504. 

55 [P084] The VSC Server 8 mediates to ensure that all 
authentications are successful 505. If any autfientica- 
tion fails, then the VSC returns a failure and does not 
change the state. Othenvise, the VSC Server 8 returns 
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a success code and continues processing the insert 
operation 104. 

User Authentication (501 Rgure 8) 

[0085] Multiple mechanisms exist for authorizing a 
user (smart card owner). One such mechanism Is Illus- 
trated In Rgure 9. TTie smart card owner enters a pass- 
word 601 (a confidential string). The Virtual Smart Card 
6 program extracts a confidential value called SALT 602 
from its own executaksia All Virtual Smart Card 6 pro- 
grams have the same SALT 602. The Virtual Smart 
Card 6 program computes 603 the MD5 hash algorithm 
over the password 601 and the SALT 602. The result is 
a 128 bit valua The Virtual Smart C^rd 6 program 
extracts the^ftrst 64 t>its and names these t)its the 
authentication key 604. The Virtual Smart Card 6 pro- 
gram extracts the second 64 bits and names these bits 
the protection key 605. 

[0086] The Virtual Smart Card authenticates the 
smart card owner by proving to the VSC Server that the 
Virtual Smart Card knows the authentication key The 
simplest such iprooT is to sirrply send the authentica- 
tion key to the VSC Server. Since the communication 
channel is protected 301, one need not be concemed 
with an irrtruder who listens for passwords. The VSC 
Server sirrply valkJates the authentication key against 
its internal tak)la More conrplex password authentica- 
tion schemes also exist [Menezes, A., Gorschot R, and 
Vanstone, S., Handbook of Applied Cryptography, CRC 
Press, Boca Raton 1996] 

Irrplementation Authentication (503 Rgure 8) 

[0087] Mult9)le mechanisms exist for authenticating 
tiie Virtual Smart Card's implementation. One such 
mechanism is illustrated in Rgure 10. The VSC Server 
8 generates a new, unique rarxJom number ril 701 . The 
VSC Server 8 sends ril 701 to the Virtual Smart Card 6. 
The Virtual Smart Card 6 h^ a confkiential Master key 
702 erTt>edded within the Virtual Smart Card 6 executa- 
ble image. All Virtual Smart Cards 6 have the same 
Master Key 702 embedded within their own executabia 
The Virtual Smart Card 6 generates a new, unique ran- 
dom number ri2 704. The Virtual Smart Card 6 com- 
putes the hash, ag., MD5. of ril 701. ri2 704, and 
Master 702. The Virtual Smart Card 6 returns ri2 704 
and the result of tiie hash to the VSC Server. The VSC 
Server 8 reconputes the hash using ril 701 and ri2 
704. If the recomputed hash matches the value retumed 
by the Virtual Smart Card 6 then the authentication step 
succeeds. This authenticatk>n step proves to the VSC 
Server that the Virtual Smart Cards knows the Master 
Key. An attacker cannot buikJ a rogue implementation of 
a Virtual Smart Card without first disasserrMing a Vir- 
tual Smart Card and discovering the Master Key. 



Machine Unique K^ MUK (303 Rgure 6): 

[0088] The Virtual Smart Card 6 computes a machine 
unique key (MUK) 303 of its local machine. Rrst the Vir- 
5 tual Smart Card 6 extracts the following values from its 
machine: the network address, the machine's name, the 
currentiy logged in user Of applicable), and tiie number 
of sectors on each fixed driva The MUK 303 is tiie hash 
of all of tiie extracted information. 

10 

Machine Lock (304 Rgure 6): 

[0089] The Virtual Smart Card 6 opens a well-known 
patii for exclusive access in the focal machine's registry. 

IS The registry is a resource availat)le in Windows 95^ or 
Windows NT~ with separately ktentified items. The 
same well-known path is hardcoded into every irrple- 
mentation of a Virtual Smart Card 6 progam. Only one 
Virtual Smart Card 6 program at a time can open the 

20 patii for exclusive access. 

[0090] One may trrplement a Virtual Smart Card 6 to 
execute on a machine other than Windows 95™ or Win- 
dows f4T™. In this case, in lieu of the registry, the Virtual 
Smart Card 6 obtains exclusive access to some other 

2S well-known resource, ag.. a fila The kiea is that the 
well-known resource helps coop^ating Virtual Smart 
Cards 6 ensure that only one Virtual Smart Card 6 exe- 
cutes on a machine at a time. 

30 Mediation (305 Rgure 6): 

[P091] The VSC Server 8 fooks up the Virtual Smart 
Card 6 in the VSC Server's 8 datat>ase using the Serial 
r^rTt>er provKled during Auttientication 302. K the state 

35 of the Virtual Smart Card 6 is not kile then the VSC 
Sender 8 refuses the request and returns a negative 
acknowledgment. The Virtual Smart Card 6 then exits. 
[0092] If the state of the Virtual Smart Card 6is kile, 
then mediation succeeds and the VSC Server 8 pro- 

40 ceeds to setting the State Of the Virtual Smart Card 6 to 
in-use307. 

Set state to in-use (307 Rgure 6): 

45 [0093] The VSC Server 8 updates the record in the 
VSC Server's database for the Vi rtual Smart Card 6 by 
setting the state to in-usa 

Enable and downfoad (308 Rgure 6): 

50 

[0094] The VSC Server 8 returns a positive acknowl- 
edgment and the Virtual Snrtart Card 6 begins servk:ing 
its owner. The VSC Server 8 also downloads informa- 
tion that is protected using the protection k^ 605. The 
55 Virtual Smart Card 6 uses the protection key 605 to 
decrypt. Subsequentiy. the Virtual Smart Card 6 can 
access the protected information. 
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Remove (105 Figure 4): 

[0095] As shewn in Figure 11 first the Virtual Smart 
Card 6 disables itself 801. Once disat)led, the Virtual 
Smart Card 6 provides no services to its owner (other s 
than completing the remove operation 105). Rrst, the 
Virtual Smart Card 6 establishes a protected channel 
301 wTth the VSC Server. The communication required 
for the remainder of the recover operation 106 passes 
through the protected channel. Second, the Virtual io 
Smart Card 6 sends a remove request and the Virtual 
Smart CarcTs serial number to the VSC Server. The 
VSC Server rejects any other operations (insert, 
remove, recover, destroy) with this same serial number 
until this entire Remove operation 1 05 exit& The Virtual is 
' Smart Caid G extracts its own protected information and 
encrypts 803 the information using its protection 
605. The Virtual Smart Card 6 i4)loads 804 the 
encrypted, protected information to the VSC Server 8. 
The Virtual Smart Card 6 releases 805 the machine lock 20 
304. The Virtual Smart Card 6 sends a request for 
renxjval 806 through the protected channel 301. The 
VSC Server 8 sets the state of the Virtual Smart Card 6 
to idle 101. 

25 

Recover (106 Figure 4) 

[0096] The recover operation is illustrated in Figure 
12. The Virtual Smart Card 6 first estat)lishes a pro- 
tected channel 301 . The communication required for the 30 
remainder of the recover operation 106 passes through 
the protected channel. The Virtual Smart Card 6 sends 
a recover message 901 to the VSC Server. The Virtual 
Smart Card 6 sends the Virtual Smart Card's serial 
nunri>er to the VSC Server. The VSC Server rejects any 3S 
other operations Qnsert remove, recover, destroy) with 
this same serial numt)er until this entire Remove opera- 
tion 105 exits. The recover operation 106 performs 
authentication 302. If the authentication tails, then the 
recover operation 106 exits 306 leaving the state 4o 
uncharged. If the authentication 302 succeeds, then 
the Virtual Smart Card 6 uploads the MUK 303. Next, 
the Virtual Smart Card 6 gFat>s the Machine Lock 304. 
Next, the Virtual Smart Card 6 requests that the VSC 
Server 8 perform mediation 902. If the mediation 902 45 
fails, then the Virtual Smart Card 6 releases the 
machine lock 904 and exits leaving the state 
unchanged. If the mediation 902 succeeds, then the 
VSC Server 8 sets 903 the state of the Virtual Snrart 
Card 6 to idle 101. The Virtual Smart Card 6 then so 
releases ihe machine lock 904 and exits. At this point 
the state of the Virtual Smart Card 6 is suitable for exe- 
cuting an insert 104 operation. 

Mediation 902 ss 

[0097] The VSC Server 8 looks up the Virtual Smart 
Card 6 in the VSC Server's 8 datak)ase using the Serial 



Number provided during Authentication 302. If the state 
of the Virtual Smart Card 6 is not in-use then the VSC 
Server 8 refuses the request and returns a negative 
adarawledgment leaving the state unchanged. The Vir- 
tual Smart Card 6 then exits. 

Destroy (107 Rgure4) 

[0098] The Virtual Smart Card 6 first establishes a 
protected channel 301. The communication required for 
the remainder of the Destroy operation 107 passes 
tinrough the protected channel. The Virtual Smart Card 
6 seixte a destroy message to the VSC Server. The Vir- 
tual Smart Card 6 sencte the Virtual Smart Card's serial 
nurTt>er to the VSC Server. The VSC Server rejects any 
other operations (insert,*^ renKve."fecover. destroy) witti 
this same serial numt>er until this entire Destroy opera- 
tion exits. The VSC Server 8 marks a Virtual Smart 
Card 6 as destroyed. The VSC Server 8 refuses to proc- 
ess any further insert remove, or recover requests for 
the destroyed Virtual Smart Card 6. 

Virtual Smart Card Internals 

[0099] As shown in figure 1 3 in the enable and down- 
load step 308 of the insert operation 104, the Virtual 
Smart Card 6 obtains protected information. The Virtual 
Smart Card 6 stores this protected information in a 
manner that cannot be manipulated or discovered. Even 
the Virtual Smart Card's owner cannot access the pro- 
tected information through any vehicle other tfian the 
Virtual Smart Card's interface. 
[01 00] Through the protected channel 301 , the VSC 
Server 8 downloads protected information 308 to the 
Virtual Smart Card 6. The Virtual Smart Card 6 gener- 
ates 1002 a new, unique symmetric key called temp. 
The Virtual Smart Card 6 decrypts 1003 the protected 
information obtained from the VSC Server 8 using the 
protection key 605 derived from the Virtual Smart Card 
6 owner's password 601. The Virtual Smart Card 6 
encrypts 1004 the protected information using the tem- 
porary 1002 symmetric encryption key. The Virtual 
Smart Card 6 writes 1005 zeros over the memory that 
hokte the deartext images of the protected information. 
The Virtual Smart Card 6 stores 1006 the protected 
information (encrypted with temp 1002) in wired, virtual 
menfx>ry.The Virtual Smart Card 6 writes zeros over any 
other locations that store the (encrypted) protected 
infonmation. If the Virtual Smart Card 6 owner requests 
1007 to perform the remove operation 105. then the Vir- 
tual Smart Card 6 performs the renrxyve operation 105. 
Otherwise, if the Virtual Smart Card 6 own^ requests 
processing that uses the protected information, then the 
Virtual Smart Card 6 decrypts 1008 the protected infor- 
mation and staes the result internally. Next the Virtual 
Smart Card 6 performs the requested operation 1009. If 
the processing dd not update the protected information, 
then the Virtual Smart Card 6 zeros out the plaintext 
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image of the protected informatioh'l 011. Otherwise, if 
the processing updated the protected information, then 
the Virtual Smart Card 6 encrypts 1012 the new version 
of the protected information using temp. The Virtual 
Smart Card 6 cvenwrites the old version of the protected 
information. 

[0101] In the following some modifications are 
desaibed 

Copying 

[0102] The administrator of the VSC Server 8 can 
potentially make multiple copies of a single Virtual 
Smart Card 6. The administrator simply builds entries in 
its database for new Virtual Smart Cards 6 but copies 
the same information iri'each entry. ' 

Irrplementation not requiring a VSC Server 

[0103] In Figure 1 , the Virtual Smart Card Reader 5 
communicates with the VSC Server via the Network. 
Kfowever, one may potentially change the architecture 
such that the Virhjal Smart Card Reader 5 does not 
communicate with the VSC Serv^ 8 via the Network. 
Instead, the Smart Card Service Provider 2, the Smart 
Card Resource Manager 3, the Reader Helper Driver 4, 
or the Virtual Smart Card Reader Driver 9 could poten- 
tially communicate via the VSC Server 8 via the networic 
while providing the same network servk;es as descrbed 
in the embodiment of the inventk>n. 
[01 04] Rgure 1 5 illustrates an alternative irrplementa- 
tion of the Virtual Smart Card 6. This implementation 
does not require a VSC Server 8. 
[0105] Instead of communicating with the Virtual 
Smart Card Server 8 the Virtual Smart Card Reader 5 
communicates with chiplication-protected physical 
media, e.g.. a Dongle 1101. A duplicatkxi protected 
physical media 1101 has the property that it is exceed- 
ingly difficutt for an unauthorized attacker to construct a 
copy of the media 1101. The Virtual Smart Card 6 is a 
copy protected program that executes only if permitted 
bythe Dongle 1101. If the end-user attaches the Dongle 
1101 to the machine, then the Virtual Smart Card 6 exe- 
cutes; othenwise, the Virtual Smart Card 6 stops. 
[0106] The states and state transitions of the Virtual 
Smart Card 6 are illustrated and described in relation to 
Rgure 4. 

Idle 101: The Virtual Smart Card 6 does not exe- 
cuta The Virtual Smart Card 6 cannot valkiate the 
Dongle 1101. Possbly. the Dongle 1 101 is not cur- 
rently installed. 

In-Use 102: The Virtual Smart Card 6 is executing. 
The Virtual Smart Card 6 periodically communi- 
cates with the attached Dongle 1 101 as illustrated 
and described in r^on to Rgure 14. 



Destroyed 103: The [)ongle 1 101 that authorizes a 
machine's Virtual Smart Card 6 has been destroyed 
or lost. 

5 [0107] The operations of the Virtual Smart Card 6 are 
described t>ek>w: 

Insert 1 04: The erxj-user attaches the Dongle 1101 
and kxx>ts the Virtual Smart Card 6 program. The 
10 Virtual Smart Card 6 program does not operate 
unless the Virtual Smart Card 6 pro^m can vali- 
date that the Dongle 11 01 is present The state of 
the Virtual Smart Card 6 is in-use 102 after the Vir- 
tual Smart Card 6 detects the Dongle 1101. This 
IS state is not explicitly recorded as in the case with 
the VSC Server 8. - 

Remove 105: The Dongle 1101 fails to authorize 
the Virtual Smart Card 6. For exantple, the end- 
20 user either removes the Dongle 1 101 , or the Virtual 
Smart Card 6 shuts down. The state is idle 101 
after the Dongle 1 101 is removed. 

Recover 106: If the end-user foses his or her Don- 
25 gle 1 101, then the end-user can request a replace- 
ment from the Dongle 1101 issuing authority. 
Presumably, the authority that first placed the 
encryption k^ on tfie Dongle 1 101 remembers the 
Dongle*s key. The state is kile 101. once the end- 
so user obtains a new Dongle 1101. 

Destroy 107: The Dongle 1101 is fost or physically 
destroyed. The state is Destroyed 103 after the 
Dongle 1 101 is physically lost or destroyed. 

35 

[0108] When the Virtual Smart Card 6 is kile 101. the 
Don^ellOl stores the protected information. The Don- 
gle 1101 has two storage locations. The first storage 
locatbn stores the Dongle 1 101 key (see Rgure 14) and 
40 the second storage kx^ation has the protected informa- 
tfori. 

[p109] The protected inlormatk)n is encrypted using a 
symmetric encryptkxi key called VSC-Key. When the 
Virtual Smart Card 6 boots, the Virtual Smart Card 6 
45 executes the insert operatbn. Upon successful comple- 
tion of the insert operation, the Virtual Smart Card 6 
enters the infuse 102 stata 

[0110] When the Virtual Smart Card 6 is in the in-use 
102 state, the Virtual Smart Card 6 obtains protected 

50 informatbn. Normally, the Virtual Smart Card 6 stores 
this protected information on the Dongle 1101 in 
encrypted form. When the Virtual Smart C^rd 6 wishes 
to obtain the protected information, the Virtual Smart 
Card 6 retrieves the protected information from the Don- 

55 gle 1101. The Virtual Smart Card 6 i^es a Master 
to decrypt the protected information. The Master key is 
hardcoded into the Virtual Smart Card's 6 executable 
imaga The Virtual Smart Card 6 stores its protected 
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informaticxi in encrypted, wii^ men^ 
[0111] Whereas the present invention has t>een 
described with respect to specific embodiments thereof, 
it is intended to ^Kompass such changes and modifica- 
tions as fall within the scope of the appended claims. 

Claims 



tual Smart Card is lost. 

8. Using of a Virtual Smart Card System of claims 1 to 
7 for license and copy protection (LCP). 

5 

9. Using of a Virtual Smart Card System of claims 1 to 
7 for Internet authentication. 



1 . Virtual Smart Card System for data processing net- 
works with sever computers administrating Virtual 
Smart Card specific records, network connections 
allowing confidential data exchange and client com- 
puters running a secure operating system, process- 
ing tiie following steps; 

Virtual Smart Card program serids a insert 
information to the Virtual Smart Card (VSC) 
Server: 

VSC Server sends protected information to the 
Virtual Smart Card; 

- Virtual Smart Card generates a new temporary 
k^; 

- Virtual Smart Card decrypts the protected 
information using a owners password; 

- Virtual Smart Card encrypts the protected 
information using the temporary key; 

- Virtual Smart Card operates like a real smart 
card; 

- Virtual Smart Card sends a remove information 
to ttie Virtual Smart Card Server and erases all 
protected information of the sessk>n. 

2. The Virtual Smart Card System of daim 1 wherein 
the insert information contain a autfientication pro- 
cedure. 



ia Virtual Smart Card System for data processing 
10 facilities with duplication-protected physical medm 
(1101) administrating Virtual Smart Card specific 
records, connections allowing confidential data 
exchange and computers running a secure operat- 
ing system, processing the following steps; 

IS 

•• Virtual Smart Card program sends a inserf^ 
information to the duplk;ation-protected physi- 
cal media (1101); 

- duplication-protected physical media (1101) 
20 serds protected information to ttie Virtual 

Smart Card; 

- Virtual Smart Card generates a new temporary 
key; 

- Virtual Smart Card decrypts the protected 
25 information using a owners password; 

Virtual Smart Card encrypts the protected 
information using the terrporary k^; 
Virtual Smart Card operates like a real smart 
card; 

30 - Virtual Smart Card sends a renrme information 
to the duplk^ation-protected physical media 
(1101) and erases all protected information of 
the session. 

35 



3. The Virtual Smart Card System of claims 1 to 2 
wherein the protected information comprises 
almost one of the fonowing informations; a private 

used for cfigital signatures, decryption, key 40 
management, etc; counters used in software rental 
applk:ations, arxJ confidential information. 

4. The Virtual Smart Card System of claims 1 to 3 
wherein the temporary key is a symmetrk; key. 45 



5. The Virtual Smart Card System of claims 1 to 4 
wherein the user auttientication mechanism aug- 
mented witti a reader-less auttientication devk;e. 

50 

6. The Virtual Smart Card System of claims 1 to 5 
wherein the Virtual Smart Card decrypts the pro- 
tected information if processing as required arxl re- 
encrypts the protected information if the processing 
has nKxlified it. ss 

7. The Virtual Smart Card System of claims 1 to 6 
wherein a recover process can be started if ttie Vir- 
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